Information Technology Security & Risk Officer
Under the direction of the Director, Information Technology, the Information Technology Security & Risk Officer is responsible for the design, configuration, deployment, enforcement and maintenance of the Municipality’s technical security infrastructure with responsibility for day-to-day operation of current security solutions and the identification, investigation, and resolution of security breaches detected by those systems. Leads or participates in the implementation of new Information technology security solutions, including the creation/maintenance of policies, standards, and procedures. Works closely with internal and external stakeholders to ensure that robust information technology security solutions are implemented, maintained, and up to date. Investigates and remedies any potential security breaches. Ensures that all security technology platforms, and solutions are implemented in accordance with the Municipality’s corporate objectives.
Credentials: Completion of a University Degree in Computer Science, Computer Engineering, Management Information Systems or related field, or an equivalent combination of education and work experience. Certified Information Systems Security Professional (CISSP) or Associate CISSP designation preferred. Demonstrated progressive senior experience as an Information Security Administrator in an enterprise level technical environment preferably in a municipal environment. Industry recognized security operations and incident management certifications in the fields of Information Technology Security Operations and Incident Response preferred. Demonstrated extensive experience in network protocol and firewall knowledge with in-depth understanding of VLAN and tunneling configurations, in addition to training in security related technology, risk mitigation, and techniques. Class G driver’s license and reliable vehicle for use on corporate business.